CVE-2023-53845
- Source
- https://cve.org/CVERecord?id=CVE-2023-53845
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53845.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53845
- Downstream
- Related
- Published
- 2025-12-09T01:30:08.016Z
- Modified
- 2026-03-20T12:33:22.257053Z
- Summary
- nilfs2: fix infinite loop in nilfs_mdt_get_block()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: fix infinite loop in nilfsmdtget_block()
If the disk image that nilfs2 mounts is corrupted and a virtual block address obtained by block lookup for a metadata file is invalid, nilfsbmaplookupatlevel() may return the same internal return code as -ENOENT, meaning the block does not exist in the metadata file.
This duplication of return codes confuses nilfsmdtget_block(), causing it to read and create a metadata block indefinitely.
In particular, if this happens to the inode metadata file, ifile, semaphore irwsem can be left held, causing task hangs in lockmount.
Fix this issue by making nilfsbmaplookupatlevel() treat virtual block address translation failures with -ENOENT as metadata corruption instead of returning the error code.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53845.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/25457d07c8146e57d28906c663def033dc425af6
- https://git.kernel.org/stable/c/34c5f17222b50c79848bb03ec8811648813e6a45
- https://git.kernel.org/stable/c/5b29661669cb65b9750a3cf70ed3eaf947b92167
- https://git.kernel.org/stable/c/8a89d36a07afe1ed4564df51fefa2bb556c85412
- https://git.kernel.org/stable/c/8d07d9119642ba43d21f8ba64d51d01931096b20
- https://git.kernel.org/stable/c/a6a491c048882e7e424d407d32cba0b52d9ef2bf
- https://git.kernel.org/stable/c/cfb0bb4fbd40c1f06da7e9f88c0a2d46155b90c2
- https://git.kernel.org/stable/c/d536f9976bb04e9c84cf80045a9355975e418f41
- https://git.kernel.org/stable/c/fe1cbbcb1a2532ee1654e1ff121be8906d83c6f0
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53845.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-53845
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedbdb265eae08db578e7cf5739be16f389d495fc75Fixedcfb0bb4fbd40c1f06da7e9f88c0a2d46155b90c2Fixedd536f9976bb04e9c84cf80045a9355975e418f41Fixedfe1cbbcb1a2532ee1654e1ff121be8906d83c6f0Fixed8a89d36a07afe1ed4564df51fefa2bb556c85412Fixed8d07d9119642ba43d21f8ba64d51d01931096b20Fixed25457d07c8146e57d28906c663def033dc425af6Fixed34c5f17222b50c79848bb03ec8811648813e6a45Fixed5b29661669cb65b9750a3cf70ed3eaf947b92167Fixeda6a491c048882e7e424d407d32cba0b52d9ef2bf
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.30Fixed4.14.315
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.283
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.243
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.180
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.111
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.28
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.2.15
- Type
- ECOSYSTEM
- Events
-
Introduced6.3.0Fixed6.3.2